$ rpki-client -vvf rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa File: EABCE94C932111EE8C70453EC4F9AE02.roa (raw, json) Hash identifier: vWd1Ef03nlFvEkscyzj36Ft3LHGo97iEmSXDLzhC4uo= Subject key identifier: 30:04:24:BF:6C:17:78:D0:37:AC:52:01:A9:5C:E9:03:B6:44:DE:59 Certificate issuer: /CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Certificate serial: 07BF Authority key identifier: 48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa Signing time: Tue 12 Dec 2023 07:38:44 +0000 ROA not before: Tue 12 Dec 2023 07:38:44 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17894 IP address blocks: 202.52.160.0/20 maxlen: 20 202.52.160.0/23 maxlen: 23 202.95.224.0/24 maxlen: 24 202.95.225.0/24 maxlen: 24 202.95.226.0/24 maxlen: 24 202.95.227.0/24 maxlen: 24 202.95.228.0/24 maxlen: 24 202.95.229.0/24 maxlen: 24 202.95.230.0/24 maxlen: 24 202.95.231.0/24 maxlen: 24 202.95.232.0/24 maxlen: 24 202.95.235.0/24 maxlen: 24 202.95.236.0/24 maxlen: 24 202.95.237.0/24 maxlen: 24 202.95.238.0/24 maxlen: 24 202.95.239.0/24 maxlen: 24 202.126.32.0/20 maxlen: 24 2401:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Validity Not Before: Dec 12 07:38:44 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65780e04-043f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e8:25:81:4e:29:b6:17:cc:fa:eb:10:12:3b: 68:3e:0f:c6:89:b8:97:d9:f7:1f:d3:11:a4:cf:05: a6:4e:5d:2b:35:13:a2:f0:5c:ff:07:76:12:6d:ed: e5:76:25:0f:39:e9:71:56:82:01:1c:00:d4:ef:a8: f9:76:e8:d2:14:5b:71:e1:a4:9e:6b:ad:6b:ad:25: 52:89:f3:71:bd:45:df:d0:c0:ab:ee:19:74:76:80: 86:55:e7:56:3a:09:0f:37:3f:6c:31:6d:7b:43:56: 73:4f:83:52:d9:f0:75:a7:34:f3:2d:47:0a:57:f5: a6:84:94:64:89:97:58:2a:10:7c:6b:5e:d1:d1:1b: dd:6b:c0:bb:96:fa:c5:60:76:9d:70:9e:9f:78:00: 15:5b:1e:43:78:ee:da:cf:53:87:b3:c1:c8:fc:3c: f2:28:ff:c9:28:6d:e1:40:52:30:c7:25:35:3c:c9: 4f:32:e5:fb:ba:7d:8a:58:1a:1a:b1:d0:d5:5f:13: 2c:5e:bc:0a:8c:14:3d:be:61:55:45:13:cd:0b:31: 9f:6b:d8:9b:39:7c:f4:41:a9:a6:3a:54:c9:80:02: 3a:82:de:3d:d1:f8:85:dd:ac:2a:a4:24:a8:b6:24: dc:84:ca:92:9c:32:56:01:8c:f2:15:e7:a3:85:f6: 40:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:04:24:BF:6C:17:78:D0:37:AC:52:01:A9:5C:E9:03:B6:44:DE:59 X509v3 Authority Key Identifier: keyid:48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.52.160.0/20 202.95.224.0-202.95.232.255 202.95.235.0-202.95.239.255 202.126.32.0/20 IPv6: 2401:b900::/32 Signature Algorithm: sha256WithRSAEncryption 9b:e6:4f:38:ee:64:76:d2:0c:e4:8d:d7:e8:26:71:85:c0:12: be:5a:56:cb:46:2c:0d:21:27:e6:1a:14:cb:10:f4:3a:71:5f: 58:01:09:55:e0:af:7b:11:3b:bf:92:f3:dc:ab:33:4c:da:85: 33:0d:b0:df:91:ba:e9:b1:fd:59:95:1d:99:97:c6:83:bd:40: a1:9e:5a:6e:d3:b5:bd:2b:17:c7:dc:6a:f2:2b:3c:8f:a3:b0: e1:9e:53:6c:f6:b5:5f:c6:75:46:26:21:bd:4f:03:89:c3:11: 44:d9:12:b4:d9:fa:8b:11:a2:28:f4:8c:56:4b:66:b5:b1:07: 9b:9c:80:f9:ed:22:23:7f:37:5d:b1:c1:2f:36:27:d7:ad:90: cd:69:93:4f:f8:f9:a5:aa:85:4e:77:79:01:70:c4:56:ec:1d: 3d:ae:98:8f:5f:aa:86:7a:2b:89:a7:68:51:ba:a2:8d:ff:49: 14:9e:a8:ce:c4:df:fc:6f:d4:7a:af:2f:95:47:63:72:7b:14: 5d:99:87:b7:a8:bc:f7:5b:db:10:c9:44:ba:9c:20:7a:3c:da: bb:78:a0:23:cf:6b:13:09:58:5e:fe:f6:f0:c8:ad:82:d4:6a: 41:26:55:f2:c1:31:a6:f3:05:87:66:8a:e5:8c:6e:d5:0f:f4: 94:5f:22:33 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2M0YxMTAvBgNVBAUTKDQ4MjAxNkU1NkEwMjQxRkQyRDM1QkZENzdCQzk3MkU2 NzNDRTlGMkYwHhcNMjMxMjEyMDczODQ0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4MGUwNC0wNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOglgU4pthfM+usQEjtoPg/GibiX2fcf0xGkzwWmTl0rNROi8Fz/B3YSbe3l diUPOelxVoIBHADU76j5dujSFFtx4aSea61rrSVSifNxvUXf0MCr7hl0doCGVedW OgkPNz9sMW17Q1ZzT4NS2fB1pzTzLUcKV/WmhJRkiZdYKhB8a17R0Rvda8C7lvrF YHadcJ6feAAVWx5DeO7az1OHs8HI/DzyKP/JKG3hQFIwxyU1PMlPMuX7un2KWBoa sdDVXxMsXrwKjBQ9vmFVRRPNCzGfa9ibOXz0QammOlTJgAI6gt490fiF3awqpCSo tiTchMqSnDJWAYzyFeejhfZAJwIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFDAEJL9s F3jQN6xSAalc6QO2RN5ZMB8GA1UdIwQYMBaAFEggFuVqAkH9LTW/13vJcuZzzp8v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTYzRi8wQUI3NzdEQUI2 QTgxMUVBQUVFMTRGN0JDNEY5QUUwMi9TQ0FXNVdvQ1FmMHROYl9YZThseTVuUE9u eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDQVc1V29DUWYwdE5iX1hlOGx5NW5QT255OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU2M0YvMEFCNzc3REFCNkE4MTFFQUFFRTE0RjdCQzRGOUFFMDIvRUFCQ0U5NEM5 MzIxMTFFRThDNzA0NTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MC4EAgABMCgDBATKNKAwDAMEBcpf4AMEAMpf6DAMAwQAyl/rAwQEyl/gAwQE yn4gMA0EAgACMAcDBQAkAbkAMA0GCSqGSIb3DQEBCwUAA4IBAQCb5k847mR20gzk jdfoJnGFwBK+WlbLRiwNISfmGhTLEPQ6cV9YAQlV4K97ETu/kvPcqzNM2oUzDbDf kbrpsf1ZlR2Zl8aDvUChnlpu07W9KxfH3GryKzyPo7DhnlNs9rVfxnVGJiG9TwOJ wxFE2RK02fqLEaIo9IxWS2a1sQebnID57SIjfzddscEvNifXrZDNaZNP+PmlqoVO d3kBcMRW7B09rpiPX6qGeiuJp2hRuqKN/0kUnqjOxN/8b9R6ry+VR2NyexRdmYe3 qLz3W9sQyUS6nCB6PNq7eKAjz2sTCVhe/vbwyK2C1GpBJlXywTGm8wWHZorljG7V D/SUXyIz -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org